Internet Storm Center
Sign In
Sign Up
SANS Network Security: Las Vegas Sept 4-9.
Handler on Duty:
Didier Stevens
Threat Level:
green
Date
Author
Title
ADOBE PDF COOLTYPEDLL VULNERABILITY TRUETYPE FONT
2010-08-05
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
ADOBE
2021-12-28/a>
Russ McRee
LotL Classifier tests for shells, exfil, and miners
2018-11-21/a>
Johannes Ullrich
Critical Vulnerability in Flash Player
2016-10-26/a>
Johannes Ullrich
Critical Flash Player Update APSB16-36
2016-09-13/a>
Rob VandenBrink
Apple iOS 10 and 10.0.1 Released
2016-06-17/a>
Johannes Ullrich
Critical Adobe Flash Update. Patch Now
2016-05-12/a>
Xavier Mertens
Adobe Released Updates to Fix Critical Vulnerability
2016-03-08/a>
Rick Wanner
Critical Adobe Updates - March 2016
2016-02-09/a>
Johannes Ullrich
Adobe Patch Tuesday - February 2016
2015-12-28/a>
Rick Wanner
Adobe Flash and Adobe AIR Updates - https://helpx.adobe.com/security/products/flash-player/apsb16-01.html
2015-10-16/a>
Alex Stanford
Adobe Flash Update
2015-10-13/a>
Alex Stanford
Adobe Updates Acrobat and Adobe Reader
2015-10-09/a>
Guy Bruneau
Adobe Acrobat and Reader Pre-Announcement
2015-09-19/a>
Didier Stevens
Don't launch that file Adobe Reader!
2015-07-27/a>
Daniel Wesemann
Angler's best friends
2015-07-14/a>
Johannes Ullrich
Adobe Updates Flash Player, Shockwave and PDF Reader
2015-07-12/a>
Rick Wanner
Another Adobe Flash Zero Day http://www.kb.cert.org/vuls/id/338736
2015-06-23/a>
Kevin Shortt
Adobe Flash Player Update - https://helpx.adobe.com/security/products/flash-player/apsb15-14.html
2015-02-05/a>
Johannes Ullrich
Adobe Flash Player Update Released, Fixing CVE 2015-0313
2015-02-02/a>
Stephen Hall
New Adobe Flash Vulnerability - CVE-2015-0313
2015-01-26/a>
Russ McRee
Adobe updates Security Advisory for Adobe Flash Player, Infocon returns to green
2015-01-23/a>
Adrien de Beaupre
Infocon change to yellow for Adobe Flash issues
2014-11-11/a>
Johannes Ullrich
Adobe Flash Update
2014-10-14/a>
Johannes Ullrich
Adobe October 2014 Bulletins for Flash Player and Coldfusion
2014-08-12/a>
Adrien de Beaupre
Adobe updates for 2014/08
2014-04-28/a>
Russ McRee
Adobe Security Bulletin: Security updates available for Adobe Flash Player http://adobe.ly/QVjO72
2014-04-08/a>
Rick Wanner
Security Updates available for Adobe Flash Player - http://helpx.adobe.com/security/products/flash-player/apsb14-09.html
2014-03-13/a>
Daniel Wesemann
Adobe Shockwave Player critical update: http://helpx.adobe.com/security/products/shockwave/apsb14-10.html
2014-03-11/a>
Johannes Ullrich
Adobe Updates: Flash Player
2014-02-20/a>
Stephen Hall
Abobe out of band patch announcement (APSB14-07)
2014-02-11/a>
Johannes Ullrich
Adobe February 2014 Patch Tuesday
2014-02-04/a>
Johannes Ullrich
Adobe Flash Player Emergency Patch
2014-01-14/a>
Johannes Ullrich
Adobe Patch Tuesday January 2014
2013-12-21/a>
Daniel Wesemann
Adobe phishing underway
2013-12-10/a>
Rob VandenBrink
Adobe Updates today as well.
2013-11-22/a>
Rick Wanner
Tales of Password Reuse
2013-10-09/a>
Johannes Ullrich
Other Patch Tuesday Updates (Adobe, Apple)
2013-10-05/a>
Richard Porter
Adobe Breach Notification, Notifications?
2013-10-04/a>
Johannes Ullrich
The Adobe Breach FAQ
2013-10-03/a>
Johannes Ullrich
October Patch Tuesday Preview (CVE-2013-3893 patch coming!)
2013-09-10/a>
Swa Frantzen
Adobe September 2013 Black Tuesday Overview
2013-07-09/a>
Swa Frantzen
Adobe July 2013 Black Tuesday Overview
2013-06-11/a>
Swa Frantzen
Adobe June 2013 Black Tuesday Overview
2013-05-14/a>
Swa Frantzen
Adobe May 2013 Black Tuesday Overview
2013-05-10/a>
Johannes Ullrich
Microsoft and Adobe Patch Tuesday Pre-Release
2013-05-09/a>
John Bambenek
Adobe Releases 0-day Security Advisory for Coldfusion, Exploit Code Available. Advisory here: http://www.adobe.com/support/security/advisories/apsa13-03.html
2013-05-08/a>
Johannes Ullrich
"De Flashing" the ISC Web Site and Flash XSS issues
2013-04-09/a>
Swa Frantzen
Adobe April 2013 Black Tuesday Overview
2013-03-12/a>
Swa Frantzen
Adobe March 2013 Black Tueday
2013-02-27/a>
Adam Swanger
Adobe Flash Player Security Update - http://www.adobe.com/support/security/bulletins/apsb13-08.html
2013-02-20/a>
Johannes Ullrich
Update Palooza
2013-02-17/a>
Guy Bruneau
Adobe Acrobat and Reader Security Update Planned this Week
2013-02-13/a>
Swa Frantzen
More adobe reader and acrobat (PDF) trouble
2013-02-07/a>
John Bambenek
Adobe Releases Patches for 0-day Vulnerability in Flash Player for Windows and Mac, Upgrade now: http://www.adobe.com/support/security/bulletins/apsb13-04.html
2013-01-09/a>
Rob VandenBrink
Security Updates for Adobe Flash - http://www.adobe.com/support/security/bulletins/apsb13-01.html
2013-01-09/a>
Rob VandenBrink
Security Updates for Adobe Reader / Acrobat - http://www.adobe.com/support/security/bulletins/apsb13-02.html
2013-01-08/a>
Richard Porter
Adobe Security Bulletins http://blogs.adobe.com/psirt/2013/01/adobe-security-bulletins-posted-4.html
2013-01-04/a>
Daniel Wesemann
Patch pre-notification from Adobe and Microsoft
2012-11-08/a>
Daniel Wesemann
Adobe Patches
2012-10-09/a>
Johannes Ullrich
Adobe Flash Player update http://www.adobe.com/support/security/bulletins/apsb12-22.html
2012-08-21/a>
Adrien de Beaupre
YYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-14/a>
Rick Wanner
Adobe Security Bulletins - http://blogs.adobe.com/psirt/2012/08/adobe-security-bulletins-posted-2.html
2012-06-12/a>
Swa Frantzen
Adobe June 2012 Black Tuesday patches
2012-05-25/a>
Guy Bruneau
Technical Analysis of Flash Player CVE-2012-0779
2012-05-12/a>
Tony Carothers
Adobe Update to Vulnerabilities
2012-05-04/a>
Guy Bruneau
Adobe Security Flash Update
2012-04-10/a>
Swa Frantzen
Adobe April 2012 Black Tuesday Update
2012-04-06/a>
Johannes Ullrich
Adobe Patch Tuesday Prerelease (Reader/Acrobat) http://www.adobe.com/support/security/bulletins/apsb12-08.html
2012-03-28/a>
Kevin Shortt
Adobe Flash Player APSB12-07 - 28 March 2012
2012-03-05/a>
Johannes Ullrich
Adobe Flash Player Security Update
2012-02-16/a>
Johannes Ullrich
Adobe Flash Player Update
2012-02-14/a>
Johannes Ullrich
Adobe Shockwave Player and RoboHelp for Word Patches
2012-01-10/a>
Adrien de Beaupre
Adobe January 2012 Black Tuesday overview
2011-12-13/a>
Johannes Ullrich
December 2011 Adobe Black Tuesday
2011-12-08/a>
Adrien de Beaupre
Newest Adobe Flash 11.1.102.55 and Previous 0 Day Exploit
2011-12-07/a>
Lenny Zeltser
Adobe Acrobat Latest Zero-Day Vulnerability Fix Coming to All Platforms by January 10
2011-11-11/a>
Rick Wanner
Adobe Air updated to 3.1.0.4880
2011-11-08/a>
Swa Frantzen
Abobe November 2011 Black Tuesday Overview
2011-10-05/a>
Johannes Ullrich
Adobe SSL Certificate Problem (fixed)
2011-10-01/a>
Mark Hofman
Adobe Photoshop for Windows Vulnerability (CVE-2011-2443)
2011-09-21/a>
Swa Frantzen
Emergency patch expected for Flash Player
2011-09-21/a>
Guy Bruneau
Adobe Release Flash Player 10.3.183.10 available at http://get.adobe.com/flashplayer/
2011-09-09/a>
Guy Bruneau
Adobe plan to release critical security updates next Tuesday for Acrobat and Reader http://www.adobe.com/support/security/bulletins/apsb11-24.html
2011-09-09/a>
Guy Bruneau
Adobe Publish its List of Trusted Root Certificate - http://www.adobe.com/security/approved-trust-list.html
2011-08-26/a>
Daniel Wesemann
Adobe Flash stability update to 10.3.183.7. See http://forums.adobe.com/message/3883150
2011-08-09/a>
Swa Frantzen
Adobe August 2011 Black Tuesday Overview
2011-06-30/a>
Guy Bruneau
Adobe Release Flash Player 10.3.181.34 available at http://get.adobe.com/flashplayer/
2011-06-14/a>
Swa Frantzen
Adobe releases patches
2011-06-06/a>
Johannes Ullrich
Adobe releases Flash Player patch on a Sunday to combat latest 0day http://www.adobe.com/support/security/bulletins/apsb11-13.html
2011-05-12/a>
Chris Mohan
Security updates available for Flash Player, RoboHelp, Audition, and Flash Media Server
2011-04-21/a>
Guy Bruneau
Adobe Reader and Acrobat Security Updates
2011-04-14/a>
Johannes Ullrich
Update to Adobe Flash 0-day: Patch will be out soon
2011-04-11/a>
Johannes Ullrich
Yet another Adobe Flash/Reader/Acrobat 0 day
2011-03-22/a>
Kevin Shortt
Adobe Reader/Acrobat Security Update - http://www.adobe.com/support/security/bulletins/apsb11-06.html
2011-03-14/a>
Bojan Zdrnja
Adobe Flash 0-day being used in targeted attacks
2011-03-02/a>
Chris Mohan
Updates: Firefox 3.6.14/3.5.17, Thunderbird 3.1.8, Adobe Flash v10.2.152.32 & WireShark 1.4.4
2011-02-09/a>
Mark Hofman
Adobe Patches (shockwave, Flash, Reader & Coldfusion)
2011-01-06/a>
Johannes Ullrich
Flash Local-with-filesystem Sandbox Bypass
2010-11-22/a>
Lenny Zeltser
Adobe Acrobat Spam Going Strong - More to Come?
2010-11-19/a>
Jason Lam
Adobe Reader X - Sandbox
2010-11-04/a>
Johannes Ullrich
Today's Adobe Patches and Vulnerablities
2010-10-28/a>
Manuel Humberto Santander Pelaez
CVE-2010-3654 - New dangerous 0-day authplay library adobe products vulnerability
2010-10-06/a>
Robert Danford
Adobe updates: http://www.adobe.com/support/security/bulletins/apsb10-21.html
2010-09-14/a>
Adrien de Beaupre
Adobe Flash v10.1.82.76 and earlier vulnerability in-the-wild
2010-09-13/a>
Manuel Humberto Santander Pelaez
Enhanced Mitigation Experience Toolkit can block Adobe 0-day exploit
2010-09-13/a>
Manuel Humberto Santander Pelaez
Adobe SING table parsing exploit (CVE-2010-2883) in the wild
2010-09-12/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat pushstring Memory Corruption paper
2010-09-08/a>
John Bambenek
Adobe Acrobat/Reader 0-day in Wild, Adobe Issues Advisory
2010-08-25/a>
Pedro Bueno
Adobe released security update for Shockwave player that fix several CVEs: APSB1020
2010-08-19/a>
Rob VandenBrink
Don points us to multiple Adobe updates (Reader and Acrobat 9.3.4 among them) ==> http://www.adobe.com/support/downloads/new.jsp
2010-08-18/a>
Guy Bruneau
Adobe out-of-cycle Updates
2010-08-10/a>
Jason Lam
Adobe critical security updates
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
2010-07-21/a>
Adrien de Beaupre
Adobe Reader Protected Mode
2010-06-29/a>
donald smith
Adobe Reader 9.3.3/8.2.3 addressing CVE-2010-1297
2010-06-16/a>
Kevin Shortt
Adobe Flash Player 10.1 - Security Update Available
2010-06-09/a>
Deborah Hale
Adobe POC in the Wild
2010-06-09/a>
Deborah Hale
Best Practice to Prevent PDF Attacks
2010-06-05/a>
Guy Bruneau
Security Advisory for Flash Player, Adobe Reader and Acrobat
2010-05-12/a>
Rob VandenBrink
Adobe Shockwave Update
2010-04-13/a>
Adrien de Beaupre
Security update available for Adobe Reader and Acrobat
2010-04-09/a>
Mark Hofman
Adobe launch issue response/work around.
2010-03-31/a>
Johannes Ullrich
PDF Arbitrary Code Execution - vulnerable by design.
2010-02-16/a>
Robert Danford
Adobe Updates: http://www.adobe.com/support/security/bulletins/apsb10-07.html http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-02-12/a>
G. N. White
Adobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 released to correct vulnerability CVE-2010-0186 Details: http://www.adobe.com/support/security/bulletins/apsb10-06.html
2010-02-02/a>
Guy Bruneau
Adobe ColdFusion Information Disclosure
2010-01-21/a>
Chris Carboni
Security Update Available for Shockwave Player
2010-01-14/a>
Bojan Zdrnja
PDF Babushka
2010-01-12/a>
Johannes Ullrich
Microsoft Advices XP Users to Uninstall Flash Player 6
2010-01-12/a>
Johannes Ullrich
Pre-Announced Adobe Reader and Acrobat Patch Found!
2010-01-07/a>
Daniel Wesemann
Static analysis of malicious PDFs
2010-01-07/a>
Daniel Wesemann
Static analysis of malicous PDFs (Part #2)
2009-12-15/a>
Johannes Ullrich
Adobe 0-day in the wild - again
2009-12-09/a>
Swa Frantzen
Adobe flash player and air patched
2009-12-03/a>
Mark Hofman
Next week will be a big patch week - Adobe is also releasing patches "Adobe is planning to release an update for Adobe Flash Player 10.0.32.18 and earlier versions, and an update to Adobe AIR 1.5.2 and earlier versions, to resolve critical security issues
2009-11-03/a>
Bojan Zdrnja
Adobe released Shockwave Player 11.5.2.602 which fixes several critical security vulnerabilities
2009-10-13/a>
Daniel Wesemann
Adobe Reader and Acrobat - Black Tuesday continues
2009-10-08/a>
Johannes Ullrich
New Adobe Vulnerability Exploited in Targeted Attacks
2009-08-18/a>
Deborah Hale
Security Bulletin for ColdFusion and JRun
2009-07-31/a>
Deborah Hale
Adobe Patch is out
2009-07-22/a>
Bojan Zdrnja
YA0D (Yet Another 0-Day) in Adobe Flash player
2009-06-24/a>
Kyle Haugsness
Adobe Shockwave Player Update
2009-06-09/a>
Swa Frantzen
Adobe June Black Tuesday upgrades
2009-05-24/a>
Raul Siles
Analyzing malicious PDF documents
2009-05-22/a>
Mark Hofman
Patching and Adobe
2009-05-12/a>
Swa Frantzen
Adobe Acrobat (reader) patches released
2009-05-01/a>
Adrien de Beaupre
Adobe Flash Media Server privilege escalation security bulletin
2009-04-29/a>
Jason Lam
Two Adobe 0-day vulnerabilities
2009-04-20/a>
Jason Lam
Digital Content on TV
2009-03-18/a>
Adrien de Beaupre
Adobe Security Bulletin Adobe Reader and Acrobat
2009-03-10/a>
Swa Frantzen
Adobe Acrobat 9.1 released
2009-02-25/a>
Andre Ludwig
Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
2009-02-25/a>
Andre Ludwig
Adobe flash player patch
2009-02-25/a>
Andre Ludwig
Preview/Iphone/Linux pdf issues
2008-12-05/a>
Daniel Wesemann
Been updatin' your Flash player lately?
2008-11-17/a>
Jim Clausing
Critical update to Adobe AIR
2008-11-11/a>
Swa Frantzen
Acrobat continued activity in the wild
2008-11-06/a>
Joel Esler
More Adobe Updates
2008-10-15/a>
Mari Nichols
Adobe Flash 10 Released
2008-07-17/a>
Mari Nichols
Adobe Reader 9 Released
2008-07-11/a>
Raul Siles
How to Determine if Adobe Acrobat or Reader 8.1.2 Security Update 1 is Installed?
2008-05-27/a>
Adrien de Beaupre
Adobe flash player vuln
2008-05-12/a>
Scott Fendley
Adobe Releases Security Updates
2008-04-09/a>
Raul Siles
Critical vulnerabilities in Adobe Flash Player
2008-03-20/a>
Joel Esler
Potential Vulnerability in Flash CS3 Professional, Flash Professional 8 and Flash Basic 8?
2008-03-12/a>
Joel Esler
Adobe security updates
2006-11-29/a>
Toby Kohlenberg
New Adobe vulnerability
2006-11-14/a>
Jim Clausing
MS06-069: Adobe Flash Player
2006-11-14/a>
Swa Frantzen
Adobe Flash update available
2006-09-12/a>
Swa Frantzen
Adobe Flash player upgrade time
PDF
2024-04-17/a>
Xavier Mertens
Malicious PDF File Used As Delivery Mechanism
2023-09-03/a>
Didier Stevens
Analysis of a Defective Phishing PDF
2023-04-12/a>
Brad Duncan
Recent IcedID (Bokbot) activity
2022-07-29/a>
Johannes Ullrich
PDF Analysis Intro and OpenActions Entries
2022-07-18/a>
Didier Stevens
Adding Your Own Keywords To My PDF Tools
2022-05-07/a>
Guy Bruneau
Phishing PDF Received in my ISC Mailbox
2022-04-25/a>
Xavier Mertens
Simple PDF Linking to Malicious Content
2020-05-02/a>
Guy Bruneau
Phishing PDF with Unusual Hostname
2020-03-14/a>
Didier Stevens
Phishing PDF With Incremental Updates.
2019-09-22/a>
Didier Stevens
Video: Encrypted Sextortion PDFs
2019-09-16/a>
Didier Stevens
Encrypted Sextortion PDFs
2019-04-01/a>
Didier Stevens
Analysis of PDFs Created with OpenOffice/LibreOffice
2019-02-14/a>
Xavier Mertens
Suspicious PDF Connecting to a Remote SMB Share
2018-08-12/a>
Didier Stevens
A URL shortener handy for phishers
2018-01-02/a>
Didier Stevens
PDF documents & URLs: video
2017-12-24/a>
Didier Stevens
PDF documents & URLs: update
2017-12-23/a>
Didier Stevens
Encrypted PDFs
2017-11-05/a>
Didier Stevens
Extracting the text from PDF documents
2017-11-04/a>
Didier Stevens
PDF documents & URLs
2017-04-23/a>
Didier Stevens
Malicious Documents: A Bit Of News
2016-01-01/a>
Didier Stevens
Failure Is An Option
2015-09-19/a>
Didier Stevens
Don't launch that file Adobe Reader!
2015-08-28/a>
Didier Stevens
Test File: PDF With Embedded DOC Dropping EICAR
2015-08-26/a>
Didier Stevens
PDF + maldoc1 = maldoc2
2015-04-19/a>
Didier Stevens
Handling Special PDF Compression Methods
2013-02-17/a>
Guy Bruneau
Adobe Acrobat and Reader Security Update Planned this Week
2013-02-13/a>
Swa Frantzen
More adobe reader and acrobat (PDF) trouble
2011-07-10/a>
Raul Siles
Jailbreakme Takes Advantage of 0-day PDF Vuln in Apple iOS Devices
2011-03-29/a>
Daniel Wesemann
Malware emails with fake cellphone invoice
2011-03-09/a>
Kevin Shortt
AVG Anti-Virus 2011 False Positives - Luhe.Exploit.PDF.B
2011-01-13/a>
Rob VandenBrink
Blackberry BES Server Updates for PDF Vulnerabilities
2010-12-15/a>
Manuel Humberto Santander Pelaez
Vulnerability in the PDF distiller of the BlackBerry Attachment Service
2010-09-26/a>
Daniel Wesemann
PDF analysis paper
2010-09-02/a>
Daniel Wesemann
SDF, please!
2010-08-22/a>
Manuel Humberto Santander Pelaez
Anatomy of a PDF exploit
2010-08-06/a>
Rob VandenBrink
FOXIT PDF Reader update to resolve iPhone/iPad Jailbreak issue ==> http://www.foxitsoftware.com/announcements/2010861227.html
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
2010-07-04/a>
Manuel Humberto Santander Pelaez
Malware inside PDF Files
2010-06-09/a>
Deborah Hale
Best Practice to Prevent PDF Attacks
2010-04-22/a>
John Bambenek
Data Redaction: You're Doing it Wrong
2010-04-08/a>
Bojan Zdrnja
JavaScript obfuscation in PDF: Sky is the limit
2010-03-31/a>
Johannes Ullrich
PDF Arbitrary Code Execution - vulnerable by design.
2010-01-15/a>
Kevin Liston
Clearing some things up about Adobe
2010-01-14/a>
Bojan Zdrnja
PDF Babushka
2010-01-05/a>
Guy Bruneau
New poll on handling PDF documents
2010-01-04/a>
Bojan Zdrnja
Sophisticated, targeted malicious PDF documents exploiting CVE-2009-4324
2009-12-15/a>
Johannes Ullrich
Adobe 0-day in the wild - again
2009-12-01/a>
Chris Carboni
Vulnerabilities in the PDF distiller of the BlackBerry Attachment Service
2009-05-29/a>
Lorna Hutcheson
Blackberry Server Vulnerability
2009-05-24/a>
Raul Siles
Analyzing malicious PDF documents
2009-03-18/a>
Adrien de Beaupre
Adobe Security Bulletin Adobe Reader and Acrobat
2009-02-25/a>
Andre Ludwig
Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
2009-02-25/a>
Andre Ludwig
Preview/Iphone/Linux pdf issues
2008-11-11/a>
Swa Frantzen
Acrobat continued activity in the wild
2008-11-10/a>
Stephen Hall
Adobe Reader Vulnerability - part 2
2008-09-03/a>
Daniel Wesemann
Static analysis of Shellcode
2008-07-15/a>
Maarten Van Horenbeeck
Extracting scripts and data from suspect PDF files
2008-04-24/a>
Maarten Van Horenbeeck
Targeted attacks using malicious PDF files
COOLTYPEDLL
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
VULNERABILITY
2023-06-28/a>
Jan Kopriva
Kazakhstan - the world's last SSLv2 superpower... and a country with potentially vulnerable last-mile internet infrastructure
2023-06-15/a>
Yee Ching Tok
Supervision and Verification in Vulnerability Management
2023-03-25/a>
Guy Bruneau
Microsoft Released an Update for Windows Snipping Tool Vulnerability
2022-10-07/a>
Xavier Mertens
Critical Fortinet Vulnerability Ahead
2022-07-05/a>
Jan Kopriva
EternalBlue 5 years after WannaCry and NotPetya
2022-05-31/a>
Xavier Mertens
First Exploitation of Follina Seen in the Wild
2022-01-26/a>
Jan Kopriva
Over 20 thousand servers have their iLO interfaces exposed to the internet, many with outdated and vulnerable versions of FW
2021-08-09/a>
Jan Kopriva
ProxyShell - how many Exchange servers are affected and where are they?
2021-04-22/a>
Xavier Mertens
How Safe Are Your Docker Images?
2020-11-16/a>
Jan Kopriva
Heartbleed, BlueKeep and other vulnerabilities that didn't disappear just because we don't talk about them anymore
2020-05-28/a>
Xavier Mertens
Flashback on CVE-2019-19781
2020-05-08/a>
Xavier Mertens
Using Nmap As a Lightweight Vulnerability Scanner
2020-03-16/a>
Jan Kopriva
Desktop.ini as a post-exploitation tool
2020-03-12/a>
Xavier Mertens
Critical SMBv3 Vulnerability: Remote Code Execution
2019-12-31/a>
Johannes Ullrich
Some Thoughts About the Critical Citrix ADC/Gateway Vulnerability (CVE-2019-19781)
2019-05-16/a>
Xavier Mertens
The Risk of Authenticated Vulnerability Scans
2019-04-04/a>
Xavier Mertens
New Waves of Scans Detected by an Old Rule
2018-08-20/a>
Didier Stevens
OpenSSH user enumeration (CVE-2018-15473)
2018-07-02/a>
Guy Bruneau
VMware ESXi, Workstation, and Fusion address multiple out-of-bounds read vulnerabilities https://www.vmware.com/security/advisories/VMSA-2018-0016.html
2018-05-22/a>
Xavier Mertens
VMware Workstation and Fusion updates address signature bypass and multiple denial-of-service vulnerabilities https://www.vmware.com/security/advisories/VMSA-2018-0013.html
2018-04-30/a>
Remco Verhoef
Another approach to webapplication fingerprinting
2018-01-13/a>
Rick Wanner
Flaw in Intel's Active Management Technology (AMT)
2017-05-25/a>
Xavier Mertens
Critical Vulnerability in Samba from 3.5.0 onwards
2017-05-18/a>
Xavier Mertens
My Little CVE Bot
2017-02-04/a>
Xavier Mertens
Detecting Undisclosed Vulnerabilities with Security Tools & Features
2016-12-26/a>
Russ McRee
Critical security update: PHPMailer 5.2.20 (CVE-2016-10045)
2016-08-14/a>
Guy Bruneau
vRealize Log Insight directory traversal vulnerability - http://www.vmware.com/security/advisories/VMSA-2016-0011.html
2016-07-27/a>
Xavier Mertens
Critical Xen PV guests vulnerabilities
2016-07-13/a>
Xavier Mertens
Drupal: Patch released today to fix a highly critical RCE in contributed modules
2016-06-23/a>
Russell Eubanks
An Approach to Vulnerability Management
2016-05-12/a>
Xavier Mertens
Adobe Released Updates to Fix Critical Vulnerability
2016-02-03/a>
Xavier Mertens
Automating Vulnerability Scans
2015-11-09/a>
John Bambenek
ICYMI: Widespread Unserialize Vulnerability in Java
2015-04-23/a>
Bojan Zdrnja
When automation does not help
2014-11-25/a>
Adrien de Beaupre
Less is, umm, less?
2014-08-16/a>
Lenny Zeltser
Web Server Attack Investigation - Installing a Bot and Reverse Shell via a PHP Vulnerability
2014-02-27/a>
Richard Porter
Cisco Prime Infrastructure Command Execution Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140226-pi
2014-02-07/a>
Rob VandenBrink
New ISO Standards on Vulnerability Handling and Disclosure
2014-01-24/a>
Chris Mohan
Security Update for OS X for CVE-2014-1252 http://support.apple.com/kb/HT6117
2014-01-17/a>
Russ McRee
Massive RFI scans likely a free web app vuln scanner rather than bots
2013-11-05/a>
Daniel Wesemann
TIFF images in MS-Office documents used in targeted attacks
2013-07-01/a>
Manuel Humberto Santander Pelaez
Using nmap scripts to enhance vulnerability asessment results
2013-05-22/a>
Adrien de Beaupre
Privilege escalation, why should I care?
2013-04-19/a>
Russ McRee
Java 8 release schedule delayed for renewed focus on security
2013-01-19/a>
Guy Bruneau
Java 7 Update 11 Still has a Flaw
2013-01-05/a>
Guy Bruneau
Adobe ColdFusion Security Advisory
2012-12-03/a>
John Bambenek
John McAfee Exposes His Location in Photo About His Being on Run
2012-11-29/a>
Kevin Shortt
New Apple Security Update: APPLE-SA-2012-11-29-1 Apple TV 5.1.1
2012-11-28/a>
Mark Hofman
McAfee releases extraDAT for W32/Autorun.worm.aaeb-h
2012-11-28/a>
Mark Hofman
New version of wireshark is available (1.8.4), some security fixes included.
2012-11-27/a>
Chris Mohan
Can users' phish emails be a security admin's catch of the day?
2012-11-26/a>
John Bambenek
Online Shopping for the Holidays? Tips, News and a Fair Warning
2012-11-20/a>
John Bambenek
Behind the Random NTP Bizarreness of Incorrect Year Being Set
2012-11-20/a>
John Bambenek
Firefox v 17.0 just released, more here: http://www.mozilla.org/en-US/firefox/17.0/releasenotes/
2012-11-19/a>
John Bambenek
MoneyGram fined $100 million for aiding wire fraud - http://krebsonsecurity.com/2012/11/moneygram-fined-100-million-for-wire-fraud/
2012-11-19/a>
John Bambenek
New Poll: Top 5 Unresolved Security Problems of 2012
2012-11-17/a>
Manuel Humberto Santander Pelaez
New Sysinternal Updates: AdExplorer v1.44, Contig v1.7, Coreinfo v3.2, Procdump v5.1. See http://blogs.technet.com/b/sysinternals/archive/2012/11/16/updates-adexplorer-v1-44-contig-v1-7-coreinfo-v3-2-procdump-v5-1.aspx?Redirected=true
2012-11-12/a>
John Bambenek
Request for info: Robocall Phishing Against Local/Regional Banks
2012-11-09/a>
Mark Baggett
Remote Diagnostics with PSR
2012-11-09/a>
Mark Baggett
Fresh batch of Microsoft patches next week
2012-11-07/a>
Mark Baggett
Help eliminate unquoted path vulnerabilities
2012-11-07/a>
Mark Baggett
Multiple 0-Days Reported!
2012-11-07/a>
Mark Baggett
Cisco TACACS+ Authentication Bypass
2012-11-05/a>
Johannes Ullrich
Reminder: Ongoing SMTP Brute Forcing Attacks
2012-11-05/a>
Johannes Ullrich
Possible Fake-AV Ads from Doubleclick Servers
2012-11-04/a>
Lorna Hutcheson
What's important on your network?
2012-10-31/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 31 - Business Continuity and Disaster Recovery
2012-10-30/a>
Johannes Ullrich
Hurricane Sandy Update
2012-10-30/a>
Richard Porter
Splunk 5.0 SP-CAAAHB4 http://www.splunk.com/view/SP-CAAAHB4
2012-10-28/a>
Tony Carothers
Firefox 16.02 Released
2012-10-26/a>
Russ McRee
Cyber Security Awareness Month - Day 26 - Attackers use trusted domain to propagate Citadel Zeus variant
2012-10-25/a>
Richard Porter
Cyber Security Awareness Month - Day 25 - Pro Audio & Video Packets on the Wire
2012-10-24/a>
Russ McRee
Ongoing Windstream outage in the midwest - https://twitter.com/search?q=windstream
2012-10-21/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 22: Connectors
2012-10-21/a>
Lorna Hutcheson
Potential Phish for Regular Webmail Accounts
2012-10-19/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 19: Standard log formats and CEE.
2012-10-18/a>
Rob VandenBrink
Cyber Security Awareness Month - Day 18 - Vendor Standards: The vSphere Hardening Guide
2012-10-17/a>
Mark Hofman
New Acrobat release (including reader) available. Version 11. Some security improvements more here -->http://blogs.adobe.com/adobereader/
2012-10-16/a>
Richard Porter
CyberAwareness Month - Day 15, Standards Body Soup (pt2), Same Soup Different Cook.
2012-10-16/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 16: W3C and HTML
2012-10-14/a>
Pedro Bueno
Cyber Security Awareness Month - Day 14 - Poor Man's File Analysis System - Part 1
2012-10-09/a>
Johannes Ullrich
Microsoft October 2012 Black Tuesday Update - Overview
2012-10-07/a>
Tony Carothers
Cyber Security Awareness Month - Day 7 - Rollup Review of CSAM Week 1
2012-10-05/a>
Johannes Ullrich
Cyber Security Awareness Month - Day 5: Standards Body Soup, So many Flavors in the bowl.
2012-10-05/a>
Richard Porter
VMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html
2012-10-05/a>
Richard Porter
Reports of a Distributed Injection Scan
2012-10-04/a>
Mark Hofman
And the SHA-3 title goes to .....Keccak
2012-10-02/a>
Russ McRee
Cyber Security Awareness Month - Day 2 - PCI Security Standard: Mobile Payment Acceptance Security Guidelines
2012-10-01/a>
Johannes Ullrich
Cyber Security Awareness Month
2012-09-28/a>
Joel Esler
Adobe certification revocation for October 4th
2012-09-26/a>
Johannes Ullrich
Some Android phones can be reset to factory default by clicking on links
2012-09-26/a>
Johannes Ullrich
More Java Woes
2012-09-21/a>
Johannes Ullrich
iOS 6 Security Roundup
2012-09-20/a>
Russ McRee
Flash Player update but no announcement, check your version http://www.adobe.com/software/flash/about/
2012-09-20/a>
Russ McRee
Apple and Cisco Security Advisories 19 SEP 2012
2012-09-20/a>
Russ McRee
Financial sector advisory: attacks and threats against financial institutions
2012-09-19/a>
Russ McRee
Script kiddie scavenging with Shellbot.S
2012-09-17/a>
Rob VandenBrink
What's on your iPad?
2012-09-14/a>
Lenny Zeltser
Scam Report - Fake Voice Mail Email Notification Redirects to Malicious Site
2012-09-13/a>
Mark Baggett
Microsoft disrupts traffic associated with the Nitol botnet
2012-09-13/a>
Mark Baggett
More SSL trouble
2012-09-10/a>
Johannes Ullrich
Microsoft Patch Tuesday Pre-Release
2012-09-10/a>
Johannes Ullrich
Godaddy DDoS Attack
2012-09-06/a>
Johannes Ullrich
SSL Requests sent to port 80 (request for help/input)
2012-09-04/a>
Johannes Ullrich
Another round of "Spot the Exploit E-Mail"
2012-09-02/a>
Lorna Hutcheson
Demonstrating the value of your Intrusion Detection Program and Analysts
2012-09-01/a>
Russ McRee
Blackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-08-31/a>
Russ McRee
Not so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours
2012-08-30/a>
Johannes Ullrich
Editorial: The Slumlord Approach to Network Security http://isc.sans.edu/j/editorial
2012-08-29/a>
Johannes Ullrich
"Data" URLs used for in-URL phishing
2012-08-27/a>
Johannes Ullrich
The Good, Bad and Ugly about Assigning IPv6 Addresses
2012-08-27/a>
Johannes Ullrich
Malware Spam harvesting Facebook Information
2012-08-26/a>
Lorna Hutcheson
Who ya gonna contact?
2012-08-22/a>
Adrien de Beaupre
Apple Remote Desktop update fixes no encryption issue
2012-08-21/a>
Adrien de Beaupre
YYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-21/a>
Adrien de Beaupre
RuggedCom fails key management 101 on Rugged Operating System (ROS)
2012-08-20/a>
Manuel Humberto Santander Pelaez
Do we need test procedures in our companies before implementing Antivirus signatures?
2012-08-19/a>
Manuel Humberto Santander Pelaez
Authentication Issues between entities during protocol message exchange in SCADA Systems
2012-08-12/a>
Tony Carothers
Layers of the Defense-in-Depth Onion
2012-08-12/a>
Tony Carothers
Oracle Security Alert for CVE-2012-3132
2012-08-09/a>
Mark Hofman
Zeus/Citadel variant causing issues in the Netherlands
2012-08-09/a>
Mark Hofman
SQL Injection Lilupophilupop style, Part 2
2012-08-07/a>
Adrien de Beaupre
Who protects small business?
2012-08-05/a>
Daniel Wesemann
Phishing for Payroll with unpatched Java
2012-08-04/a>
Kevin Liston
Vendors: More Patch-Release Options Please
2012-07-27/a>
Daniel Wesemann
Cuckoo 0.4 is out - cool new features for malware analysis http://www.cuckoosandbox.org/
2012-07-24/a>
Richard Porter
Wireshark 1.8.1 Released http://www.wireshark.org/
2012-07-24/a>
Richard Porter
Report of spike in DNS Queries gd21.net
2012-07-20/a>
Mark Baggett
Syria Internet connection cut?
2012-07-19/a>
Mark Baggett
A Heap of Overflows?
2012-07-19/a>
Mark Baggett
Diagnosing Malware with Resource Monitor
2012-07-16/a>
Richard Porter
Sysinternals Update @ http://blogs.technet.com/b/sysinternals/archive/2012/07/16/updates-handle-v3-5-process-explorer-v15-22-process-monitor-v3-03-rammap-v1-21-zoomit-v4-3.aspx
2012-07-13/a>
Richard Porter
Yesterday (not as on the ball as Rob) at SANSFire
2012-07-13/a>
Russ McRee
2 for 1: SANSFIRE & MSRA presentations
2012-07-13/a>
Russ McRee
VMWare Security Advisory 12 JUL 2012
2012-07-13/a>
Russ McRee
Yahoo service SQL injection vuln leads to account exposure
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Recording Server - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctrs
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Immersive Endpoint Devices - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
2012-07-12/a>
Rick Wanner
Cisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Manager - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctsman
2012-07-09/a>
Johannes Ullrich
The FBI will turn off the Internet on Monday (or not)
2012-07-09/a>
Manuel Humberto Santander Pelaez
Internet Storm Center panel tonight at SANSFIRE 2012!
2012-07-05/a>
Adrien de Beaupre
Microsoft advanced notification for July 2012 patch Tuesday
2012-07-02/a>
Joel Esler
A rough guide to keeping your website up
2012-07-02/a>
Joel Esler
Linux & Java leap second bug
2012-06-29/a>
Jim Clausing
Updated SysInternals tools - Autoruns, Process Explorer, Process Monitor, PSKill -- http://blogs.technet.com/b/sysinternals/archive/2012/06/28/updates-autoruns-v11-32-process-explorer-v15-21-process-monitor-v3-02-pskill-v1-15-rammap-v1-2.aspx
2012-06-22/a>
Kevin Liston
Updated Poll: Which Patch Delivery Schedule Works the Best for You?
2012-06-21/a>
Russ McRee
Analysis of drive-by attack sample set
2012-06-21/a>
Russ McRee
Wireshark 1.8.0 released 21 JUN 2012 http://www.wireshark.org/download.html
2012-06-19/a>
Daniel Wesemann
Vulnerabilityqueerprocessbrittleness
2012-05-05/a>
Tony Carothers
Vulnerability Assessment Program - Discussions
2011-12-28/a>
Daniel Wesemann
Hash collisions vulnerability in web servers
2011-12-08/a>
Adrien de Beaupre
Newest Adobe Flash 11.1.102.55 and Previous 0 Day Exploit
2011-05-09/a>
Rick Wanner
Serious flaw in OpenID
2010-12-24/a>
Daniel Wesemann
A question of class
2010-12-10/a>
Mark Hofman
EXIM MTA vulnerability
2010-09-14/a>
Adrien de Beaupre
Adobe Flash v10.1.82.76 and earlier vulnerability in-the-wild
2010-09-08/a>
John Bambenek
Adobe Acrobat/Reader 0-day in Wild, Adobe Issues Advisory
2010-08-30/a>
Adrien de Beaupre
Apple QuickTime potential vulnerability/backdoor
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
2010-07-20/a>
Manuel Humberto Santander Pelaez
iTunes buffer overflow vulnerability
2010-07-20/a>
Manuel Humberto Santander Pelaez
Lowering infocon back to green
2010-07-20/a>
Manuel Humberto Santander Pelaez
LNK vulnerability now with Metasploit module implementing the WebDAV method
2010-07-04/a>
Manuel Humberto Santander Pelaez
Interesting analysis of the PHP SplObjectStorage Vulnerability
2010-06-24/a>
Jason Lam
Help your competitor - Advise them of vulnerability
2010-06-15/a>
Manuel Humberto Santander Pelaez
Apple releases advisory for Mac OS X - Multiple vulnerabilities discovered
2010-05-23/a>
Manuel Humberto Santander Pelaez
Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability
2010-01-21/a>
Johannes Ullrich
New Microsoft Advisory: Vulnerability in Windows Kernel Privilege Escalation (CVE-2010-0232)
2010-01-17/a>
Rick Wanner
Buffer overflow in Quicktime
2009-12-24/a>
Guy Bruneau
Microsoft IIS File Parsing Extension Vulnerability
2009-11-24/a>
Rick Wanner
Microsoft Security Advisory 977981 - IE 6 and IE 7
2009-11-16/a>
G. N. White
Reports of a successful exploit of the SSL Renegotiation Vulnerability?
2009-11-13/a>
Adrien de Beaupre
TLS & SSLv3 renegotiation vulnerability explained
2009-11-13/a>
Adrien de Beaupre
Flash Origin Policy Attack
2009-11-05/a>
Swa Frantzen
TLS Man-in-the-middle on renegotiation vulnerability made public
2009-10-08/a>
Johannes Ullrich
New Adobe Vulnerability Exploited in Targeted Attacks
2009-09-08/a>
Adrien de Beaupre
Microsoft Security Advisory 975191 Revised
2009-09-04/a>
Adrien de Beaupre
Vulnerabilities (plural) in MS IIS FTP Service 5.0, 5.1. 6.0, 7.0
2009-07-13/a>
Adrien de Beaupre
Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution
2009-07-13/a>
Adrien de Beaupre
Security Update available for Wyse Device Manager
2009-05-29/a>
Lorna Hutcheson
VMWare Patches Released
2009-05-10/a>
Mari Nichols
Is your Symantec Antivirus Alerting working correctly?
2009-05-04/a>
Tom Liston
Adobe Reader/Acrobat Critical Vulnerability
2009-02-11/a>
Robert Danford
ProFTPd SQL Authentication Vulnerability exploit activity
2008-12-23/a>
Patrick Nolan
MS ACK's Vulnerability in SQL Server which Could Allow Remote Code Execution
2008-12-10/a>
Mark Hofman
Microsoft wordpad text converter issue
2008-09-29/a>
Daniel Wesemann
Patchbag: WinZip / MPlayer / RealWin SCADA vuln
2008-08-02/a>
Maarten Van Horenbeeck
A little of that human touch
2008-07-17/a>
Mari Nichols
Firefox Releases 3.0.1 and fixes 3 security vulnerabilities
2008-07-16/a>
Maarten Van Horenbeeck
Firefox 2.0.0.16 fixes two security vulnerabilities
2008-07-15/a>
Maarten Van Horenbeeck
Oracle (and BEA, Hyperion and TimesTen) critical patch update July 15th, 2008
2008-07-15/a>
Maarten Van Horenbeeck
BlackBerry PDF parsing vulnerability
2008-06-19/a>
William Stearns
Firefox vunerability
2008-05-27/a>
Adrien de Beaupre
Adobe flash player vuln
2008-05-06/a>
Marcus Sachs
Industrial Control Systems Vulnerability
2007-01-03/a>
Toby Kohlenberg
VLC Media Player udp URL handler Format String Vulnerability
2006-10-05/a>
John Bambenek
There are no more Passive Exploits
TRUETYPE
2011-11-04/a>
Guy Bruneau
Duqu Mitigation
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
FONT
2020-03-23/a>
Didier Stevens
Windows Zeroday Actively Exploited: Type 1 Font Parsing Remote Code Execution Vulnerability
2010-08-05/a>
Manuel Humberto Santander Pelaez
Adobe Acrobat Font Parsing Integer Overflow Vulnerability
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Follow updates by subscribing to the handler's
diary RSS feed